According to a protected disclosure filed with the Office of Special Counsel, Borges told the Government Accountability Project that DOGE officials working at Social Security created a “live copy” of the country’s Social Security records in a separate cloud environment that sidestepped usual security checks.
The group says those lapses put the Social Security information of more than 300 million Americans at risk.
You must log in or # to comment.
Thanks a lot DOGE. So clearly Elon Musk gives every American compensation, we get new numbers and have all of our credit history wiped clean to start new right? Bc otherwise this just means we’ve all been massively fucked by Trump and his band of idiots
His wealth spread across everyone living in the U.S. is ~ $2500 a person
Not adult, not citizen, not household,…
Person
I could use an extra $2500.
Life in prison would be nice too. Fuck him and his ketamine bender
I feel like he would just buy his luxury in prison like Pablo Escobar.
I think the worst punishment for people like Thiel and Musk would be to have their assets seized and any future wages garnished to be paid to the victims of their crimes, while they’re forced to attempt to survive in the society they’ve helped create.
The consequences they face will serve as an example and deterrent for others like them and one of two things would happen. Billionaires suddenly experience empathy/gain a conscience and conditions improve for all of society, or, billionaires continue to maintain the conditions they’ve created while one by one falling victim to their own creations. Most likely they check themselves out very quickly rather than attempt to survive the nightmare they had no problems inflicting on others. Either way equals a net gain for society.
Totally. I meant life in prison in addition to having all of their assets seized. They deserve to rot.
Thanks DOGE! Jesus, trump, how could you be so fucking stupid and uncaring? You have done nothing more than shove the monopoly board of america off of the table in a big tantrum because you were losing. Don’t forget, America made you, America can bring you down.
Two words: malignant narcissist.
I’d add pedophile to the list.
This is how Americans are going to lose their right to vote. The process will be “slow” for specific states and regions, just long enough to miss the midterms.
Y’all won your right to vote once, you can do it again.
Yep - I’ve already been bugging my grandma to get a passport so that she will be able to vote if SAVE act passes (she changed her name when she married, but doesn’t have a passport since she’s never left the country). Gotta avoid doomerism and make the fascists fight for every inch we can.
Say it with me!
A 👏 social 👏 security 👏 number 👏 is 👏 NOT 👏 a 👏 valid 👏 identity 👏 verification 👏 method.
The idea that all SSNs should be changed is dumb.
The fix is to get dumb people to stop using it as an identity verification method.
Instead of new SSNs, how about we maybe the number less risky in general?
It should never have served as a “secret”. Authenticating someone needs more than some account number. SSN should be more of a “username”, not a password.
It was never meant to part of any kind of database, but banks and businesses found a loophole to that a long ass time ago and now we’re here.
What do you think it’s meant for? It’s a perfect fit for any database that needs to uniquely identify a person.
The problem is using it as authorization without any other checks.
It’s not a perfect fit for anything that requires security. It was never meant to be a SECURE identifier. Just AN identifier.
CGP Grey’s video - the worst ID system in america
American government is again a laughingstock. Another comedy episode for the plutocrats in Moscow.
Thanks Doge. Daily reminder. Fuck Elon.
Honestly, having SSNs as identification in the first place is the main problem
Another victory for Small Government and the Private Sector, puh-raise JEE-zuz-ah!
I need to move
The onus is put on me to protect my info and identity but it’s never my fault when these breaches happen. It’s always a third party or a govt org that drops the ball. It’s so frustrating.
And now you have keyed in on why it never changes…the people responsible are never held accountable, so why would they do anything differently?
What a perfect time to stop using social security numbers for specifically the thing they were not designed to be.
Except the dumfucks have railed against the idea of a national id number since before they removed “Not to be used for ID” from the SS cards. So instead we have a national id number that was never meant to be one and stupidly easy to figure out.
You know, I almost posted that it specifically says on the back “Not to be used for ID”, because I remember that on mine. Looked online to be sure I was right, and couldn’t find it, so I didn’t post it
I had no idea that they removed that. It’s not like they changed function!
They did start randomizing the numbers though, so the first 3 aren’t based off of the area you were born.
All U.S. Social Security numbers may need to be changed
Yeah, sure, and winged monkeys may fly out of my ass. But I doubt it’ll happen.
Yeah, honestly they have needed to be changed for years now, what with all the data breaches and stuff… Pretty sure everyone’s info was leaked ages ago. Nothing has been done because this is how the people in charge want it.
We’re the unwashed masses. Changing our social security numbers would mean considering us people worth more than a means of exploitation, and the ruling class couldn’t possibly burden themselves with the mere thought.
Yeah, thanks for that Equifax.
they dont want to spend the effor to do it unfortunately
For sure. They were fine invalidating mine and everybody else’s Puerto Rican birth certificate but they’ll never put this sort of administrative burden in action.
It would have happened after Experian if it was ever possible for it to happen.
EDIT: I was thinking of Equifax but Experian is not clean either
it was equifax, and it was quickly swept under the rug, conveniently around the time trumps 1st tax cuts occured.
Wait, Experian or Equifax?
Cripes, did I miss another one?
Oh you’re right. You didn’t miss another one, I lost another brain cell.
It was both within the last 5 years, and transunion recently. They all gave free monitoring for those affected.
Jim Carrey’s got you covered. https://youtu.be/_yRJOX1fppQ
They actually need to publicly release everyone’s SSNs so that they can’t be used for authentication anymore, which they never should have been
I’ve been saying this for literal years now. They should release a publicly searchable database of every single SSN, name, and DOB. Force organizations to stop using those as a form of ID, because they’re not secure and never have been.
Give it like a year of lead time. Like announce “March 1 2027, we’ll post the database” and then that gives institutions a full year to figure something new out.
This is the reality in some other countries. In Sweden, our “SSN” is our date of birth followed by four numbers that have different meanings depending on when you were born. During the period I was born it was an area code, and a binary of male/female and a control number. This has changed over time to not be exactly the same for newer generations. All of this information is available publicly to search for through our version of the IRS that then trickles out to various private companies that just publish it out right.
I personally have a dislike for this system, as I am a major privacy enjoyer. But people can’t really do anything with the information if they had it. If someone looks up my name and SSN, they have it, but can’t bring me harm.
Why not photos too? jfc.
All this data and more is publicly available in many countries.
And your mother’s maiden name
SSNs are generally considered public information but how the SSN is linked to other information is usually the more difficult bit to find and it’s generally pay-walled. (Any jackass with a business license and a credit card can usually buy background check information for ‘hiring’.)
But no, it shouldn’t be solely used for authentication. That is just dumb. However, it can be used as part of a larger verification and validation scheme while building authentication/authorization profiles. In most systems that I have seen that use full or partial SSNs, it is always linked to several other identifiers that need to match.
They are definitely not. People consider it increased risk for identity theft if they hear their SSN was stolen and you just cited how people are still using them in part for authentication. They need to be completely useless for authentication
I am making a slightly different point and have a bias to this perspective: https://www.legis.iowa.gov/docs/publications/SD/19230.pdf
I am saying that an SSN can be part of a larger validation scheme, not the only key to the castle. Specifically for government sites, SSNs can be linked to IRS data to verify places of last residence. A person generally needs to verify multiple items that are referenced by the SSN before basic authentication can be established and set by the user. (This is part of the full Authentication, Authorization and Access Control triad.)
An SSN is just a broad level identifier. If you look at many laws around the release of SSNs, the redaction is usually in place to prevent the linking of different documents and other data points.
If I released my SSN in this chat, I could be fully doxxed in a matter of seconds. It’s mainly because there are many legal systems in place that use an SSN as a primary key, of sorts. (It’s a bit more than that, as SSNs can be duplicated in some circumstances.)
So to say, at a high level, an SSN is considered private is absolutely correct. However, it’s so easily referenced and obtainable it really isn’t fully private either.
If I was to generate a full list of every possible SSN in the US (which I have done, multiple times), that list is effectively useless to anyone who obtains a copy of it. So, by itself, an SSN is effectively public.
If I released my SSN in this chat, I could be fully doxxed in a matter of seconds.
000-00-0002
000, 666 and 900-999 are invalid area numbers and any digit group of all zeros is also invalid. Thanks for playing!
Borges alleges that a little-known federal tech team called the Department of Government Efficiency, or DOGE, copied the government’s master Social Security database into a cloud system that lacked normal oversight.
I don’t know if I’d call them a little-known team (they’re infamous for basically fraud), but point taken.
Regardless of whether or not they are breached, the social security numbering system needs to be changed because it is far from a secure number.
because it is far from a secure number.
It is only the American obsession with using it as a unique identifier for everything in their lives that has caused this issue.
The problem is they are using Identification for authentication.
It is not even identification, it is literally just a number that anyone can use.
The original idea is exactly for identification (just not secure ones). Think of it like writing your name on the inside of your jacket or have a name tag on your luggage.
That’s true of all names. Names are still a form of identification. But it doesn’t authenticate that you are a specific person.
It would be less expensive to simply trust everyone. Administering a numbering system and trying to prevent fraud costs more than the actual fraud it prevents, and does nothing to prevent the larger frauds.
It’s like having a chain on the pen at the bank, with a security guard watching the chain, and three managers making aure the secuirty guard is watching the chain all day, but the cash drawers are open and the three managers simply help themselves to as much cash as they like.
You say that like we had any part in every single service asking for our SSN lmfao
Changing the system do not make it more secure by default. Here the SSN equivalent is calculated with your name, surname, date and place of birth and a check code, and it is not a secret how to calculate it (it was the very first program you write if you study IT at school for example).
The problem is not SSN number itself, but the fact that you need only it to do everything.
